GET /staged_config/access/users/{id}
Retrieves a staged user.
Retrieves a staged user. The staged configuration is not active until a deploy is performed. Must have ADMIN or SAASADMIN capability to call this endpoint. Any staged users will be returned for ADMIN capability. Any staged users, except ADMIN capability users, will be returned for SAASADMIN capability.
MIME Type |
---|
application/json |
Parameter | Type | Optionality | Data Type | MIME Type | Description |
---|---|---|---|---|---|
id |
path |
Required |
Number (Integer) |
text/plain |
The ID of the staged user to return. |
fields |
query |
Optional |
String |
text/plain |
Optional - Use this parameter to specify which fields you would like to get back in the response. Fields that are not named are excluded. Specify subfields in brackets and multiple fields in the same object are separated by commas. |
HTTP Response Code | Unique Code | Description |
---|---|---|
200 |
The staged user was retrieved. |
|
404 |
38301001 |
The staged user does not exist. |
Response Description
- id - Long - The ID of the user. The ID of the staged user and the ID of the same deployed user are the same. This field is read only.
- username - String - The username of the user. This field is read only.
- email - String - The email of the user.
- description - String - The description of the user. This field is only modifiable in the staged configuration.
- user_role_id - Long - The user_role_id of the user. This field is only modifiable in the staged configuration. Access staged user roles using /api/staged_config/user_roles API, and deployed user roles under /api/confg/user_roles API.
- security_profile_id - Long - The security_profile_id of the user. This field is only modifiable in the staged configuration. Access staged security profiles using /api/staged_config/security_profiles API, and deployed user roles under /api/config/security_profiles API.
- locale_id - String - The locale_id of the user. Access locales using /system/information/locales API.
- enable_popup_notifications - Boolean - Indicates if popup system notifications are enabled for this user.
- old_password - String - This field will always be null when returned in a response. Required to be set to the current password when a user is changing their own system password.
- password - String - This field will always be null when returned in a response. Set to the new password when a user is changing their own system password.
- password_creation_time - Long - The time in milliseconds since epoch when the current password was created. Combined with the password_expiry_interval from the /system/authorization/password_policies API to calculate when the password expires.
- tenant_id - Long - The tenant_id of the current user. This field is only modifiable in the staged configuration. Access tenants using /config/access/tenant_management/tenants API.
- allow_system_authentication_fallback - Boolean - Allow system authentication fallback for this user when external authentication is configured. Has no effect if system authentication is configured.
- local_only_account - Boolean - Forces local authentication for this user when external authentication is configured. Has no effect if system authentication is configured.
- inactivity_timeout - Long - The inactivity timeout (in milliseconds), truncated to minutes. Set to 0 if a user should not be logged out after being inactive.
- notification_flag - Enumeration - A field that indicates that a user is flagged and requires an administrator's attention. The value represents why that user is flagged. The following values are available: LDAP_SYNC_USER_NOT_FOUND, LDAP_SYNC_REPO_NOT_FOUND, LDAP_SYNC_SP_NOT_FOUND.
- LDAP_SYNC_USER_NOT_FOUND: LDAP Sync task could not find this user in LDAP server.
- LDAP_SYNC_REPO_NOT_FOUND: LDAP Sync task could not find the corresponding LDAP repository in QRadar.
- LDAP_SYNC_SP_NOT_FOUND: LDAP Sync task could not correctly map the user's security profile or user role.
Response Sample
{
"allow_system_authentication_fallback": true,
"description": "String",
"email": "String",
"enable_popup_notifications": true,
"id": 42,
"inactivity_timeout": 42,
"local_only_account": true,
"locale_id": "String",
"notification_flag": "String <one of: LDAP_SYNC_USER_NOT_FOUND, LDAP_SYNC_REPO_NOT_FOUND, LDAP_SYNC_SP_NOT_FOUND>",
"old_password": "String",
"password": "String",
"password_creation_time": 42,
"security_profile_id": 42,
"tenant_id": 42,
"user_role_id": 42,
"username": "String"
}